JP2011187010A - Information input assistance device and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To reduce a burden of an operation for an individual user to input information different from each other in authentication information or the like, in a use form used respectively by the plurality of users. <P>SOLUTION: An information input assistance device requests connection to an AP server for providing service selected by the user (100), acquires attribute information of the user from a management server (108), when the authentication information is requested from the AP server (YES in 104), confirms the presence of registration of a rule about the authentication information (user ID and password) corresponding to a connection address in this time, generates/displays the user ID according to the rule of the user ID (112-122), when registered (YES in 110), requests an input of the password to the user according to the rule of the password, or sets/displays a fixed value (124-128), and transmits the user ID and the password to the AP server (134), when transmission is instructed (YES in 132). <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to an information input support device and an information input support program.

  Regarding the simplification of the login operation at the time of authentication, Patent Document 1 maintains a database of identification numbers and personal identification numbers for each electronic business partner, and is integrated or linked with electronic transaction software such as an Internet browser and dedicated software. A technique for automatically inputting an appropriate identification number and password for each electronic supplier is disclosed.

  Further, Patent Document 2 discloses connection information necessary for connection to each of a plurality of systems to an integrated system connected via a web server by a web browser operated by a user, for each management system of each system. A technique for realizing single sign-on in an environment in which a plurality of systems operate is disclosed by holding attribute information for identifying connection information corresponding to each as management information for each system.

  Further, in Patent Document 3, in a system including a server computer that provides a server application and a client that uses the server application provided by the server computer, a personal information management table in which user authentication information of the client is registered for each server application There is disclosed a technique of providing a personal information management server that is provided for each user and performs user authentication for a server on behalf of a client based on user authentication information registered in a personal information management table.

  Further, Patent Document 4 provides a web server management table in which location information indicating the location of the web server and transmission information transmitted to the web server are associated with each login name of the user and each web server, and the device is used. When the login name of the user to be identified is identified, the content related to the identified login name in the web server management table is determined, and transmission information corresponding to the web server included in the content is transmitted from the image processing apparatus to the web server. A technique for reducing the work of key operations while securing security is disclosed when accessing.

  Further, in Patent Document 5, the client creates a set of authentication information unique to the first server, which is different from the master authentication information, based on the master authentication information stored in the client and the data related to the first server. And providing the first server with authentication information specific to the first server to access limited resources controlled by the first server, so long as the user remembers a single master authentication information, A technique that enables sign-on to a plurality of servers with different authentication information for each server is disclosed.

JP 2002-032341 A JP 2002-324051 A JP 2000-207362 A JP 2008-083809 A JP 2000-347994 A

  The present invention relates to an information input support device and an information input support program capable of reducing the burden of an operation in which individual users input different information for each information input destination in an information input support device shared by a plurality of users. Is the purpose.

  In order to achieve the above object, an information input support device according to the invention described in claim 1 includes: an identification unit for identifying a user; and a first storage unit for storing user attribute information for each of a plurality of users. The attribute information corresponding to the user identified by the identification means is acquired, and the rule information representing the rule for generating the input information from the user attribute information is associated with the transmission destination of the input information and the type of the input information. The rule information corresponding to the transmission destination of the input information and the type of the input information is acquired from the second storage means that each stores the corresponding information, and the user is identified based on the acquired attribute information and the rule information. Generating means for generating the input information, and processing means for performing processing for transmitting the input information generated by the generating means to the transmission destination.

  The invention according to claim 2 is the invention according to claim 1, wherein the input information is input to an authentication information input field in an input screen distributed from the connection destination when connected to the instructed connection destination. Authentication information required, and when the input screen is distributed from the connection destination, the generation unit associates the rule information with a connection destination as a transmission destination of the input information and a type of input information, respectively. Rule information corresponding to the type of information requested to be input to the connection destination of the distribution source of the input screen and the authentication information input field is acquired from the second storage means to store, the acquired attribute information and the The authentication information as the input information is generated based on the rule information, and the processing means performs a process of transmitting the authentication information generated by the generation means to the connection destination.

  The invention according to claim 3 is the invention according to claim 1, wherein the input information is input to an authentication information input field in an input screen distributed from the connection destination when connected to the instructed connection destination. Authentication information required, the generation means, when the input screen is distributed from the connection destination, the rule information as a connection destination as a transmission destination of input information, and as a type of input information, From the second storage means for storing each in association with information for identifying an input field in the input screen for inputting the input information, the connection destination of the distribution source of the input screen and the authentication information in the distributed input screen Rule information corresponding to the input field is acquired, and the authentication information as the input information is generated based on the acquired attribute information and the rule information, and the processing unit is configured to generate the authentication information generated by the generation unit. The distribution, performs processing for inputting the authentication information input field of the distribution input screen.

  According to a fourth aspect of the present invention, in the invention according to any one of the first to third aspects, the generation unit uses rule information acquired from the second storage unit as the rule as the input information. In the case of information specifying the type of attribute information, by extracting attribute information corresponding to the type specified by the rule information from the attribute information acquired from the first storage unit, the identified user can be identified. Corresponding input information is generated.

  According to a fifth aspect of the present invention, in the invention according to any one of the first to third aspects, the generation unit uses rule information acquired from the second storage unit as the rule as the input information. In the case of information specifying the type of attribute information and the editing method of the attribute information, the attribute information corresponding to the type specified by the rule information is extracted from the attribute information acquired from the first storage unit. Later, the input information corresponding to the identified user is generated by editing the extracted attribute information according to the editing method specified by the rule information.

  According to a sixth aspect of the present invention, in the invention according to any one of the first to fifth aspects, the generation unit stores rule information corresponding to a transmission destination of the input information and a type of the input information in the second storage. When not stored in the means, the plurality of rules represented by the plurality of rule information stored in the second storage means are each presented to the user as options, and selected from the plurality of presented rules by the user The input information corresponding to the identified user is generated based on the determined rule, and the rule information representing the selected rule is associated with the transmission destination of the input information and the type of the input information. It is additionally stored in the second storage means.

  The invention according to claim 7 is the invention according to any one of claims 1 to 6, wherein when the input information is input by the user, the input information input by the user is the first information. Rule information representing the generated rule, which is obtained from the storage means, collates with attribute information corresponding to the user identified by the identifying means, generates a rule for generating the input information from the attribute information of the user Is further included in the second storage unit in association with the input information transmission destination and the type of the input information.

  The invention according to claim 8 is the invention according to claim 7, wherein the rule management means is used in attribute information corresponding to the user identified by the identification means acquired from the first storage means. If there is attribute information that completely matches the input information input by the user, a rule that specifies the type of the attribute information that completely matches is generated as the rule and acquired from the first storage means If the attribute information corresponding to the user identified by the identification means includes attribute information that partially matches the input information input by the user, the partially matching attribute information is used. An editing method for completely matching the input information input by the person, and as the rule, the type of the attribute information that partially matches, the determined editing method, To generate the rules that specify.

  The information input support program according to the invention described in claim 9 is identified by the identification means from the identification means for identifying the user and the first storage means for storing the user attribute information for each of the plurality of users. The attribute information corresponding to the user is acquired, and the rule information indicating the rule for generating the input information from the user attribute information is stored in association with the transmission destination of the input information and the type of the input information. The rule information corresponding to the transmission destination of the input information and the type of the input information is acquired from the second storage means, and the input information corresponding to the identified user is acquired based on the acquired attribute information and the rule information. And generating means for generating, and processing means for performing processing for transmitting the input information generated by the generating means to the transmission destination.

  The invention according to claims 1, 4, 5, and 9 realizes a reduction in the burden of an operation in which individual users input different information for each information input destination in an information input support apparatus shared by a plurality of users. It has the effect of being able to.

  The invention described in claim 2 has an effect that it is possible to reduce the burden of the authentication information input operation when each user inputs different authentication information for each connection destination.

  The invention described in claim 3 has an effect that it is possible to reduce the burden of the input operation of authentication information when each user inputs different authentication information for each authentication information input field in the input screen.

  The invention according to claim 6 has an effect that the corresponding rule information can be additionally stored while suppressing an increase in the burden on the user for the transmission destination or the input field in the input screen where the corresponding rule information is not stored.

  The invention according to claims 7 and 8 can additionally store rule information representing a new rule even when new input information generated by a new rule not stored as rule information appears in the second storage means. Has the effect.

It is a block diagram which shows schematic structure of the computer system which concerns on embodiment. It is a flowchart which shows the content of AP server connection processing. It is a flowchart which shows the content of a rule information addition process. It is an image figure which shows an example of an authentication information input screen and a virtual keyboard, respectively. It is the schematic which shows an example of the rule table classified by connection destination and rule definition table which respectively comprise a rule information table.

  Hereinafter, an example of an embodiment of the present invention will be described in detail with reference to the drawings. FIG. 1 shows a schematic configuration of a computer system 10 according to the present embodiment. The computer system 10 includes a network 12 including a LAN (Local Area Network) and the Internet, an image reading and printing device 14, a plurality of terminal devices 26 including a PC (Personal Computer), a management server 36, and the like. A plurality of application servers (AP servers) 40 are connected to each other.

  The image reading / printing apparatus 14 includes a microcomputer 16C, a memory 16B, a nonvolatile storage unit 16C including a HDD (Hard Disk Drive), a flash memory, and the like, and a main body control including a network I / F (interface) unit 16D. A portion 16 is provided. The main body control unit 16 optically reads a set document (paper original) to be read and outputs read image data. The image represented by the input print image data is printed on a recording sheet. The image printing unit 20, the display unit 22 A as a display unit including an LCD, the operation panel 22 provided with the operation unit 22 B as an input reception unit including a numeric keypad and a touch panel, and the individual use of the computer system 10 Card readers 24 are connected to read information such as card IDs recorded on IC cards (not shown) possessed by each person. The card reader 24 is an example of the identification means of the present invention.

  A network I / F unit 16D of the main body control unit 16 is connected to the network 12 and manages communication with the terminal device 26 via the network 12. The storage unit 16C of the main body control unit 16 controls the operation of each unit of the image reading and printing apparatus 14 as a program executed by the CPU 16A, and provides various services (for example, document copying and printing (for example, document copying and printing)). Document data received from the terminal device 26, printing of a document represented by the document data registered in the DB (database) stored in the storage unit of the AP server 40), scan to server (reading the document, reading image data A service providing program for providing a service for storing read image data in a storage area provided in advance on the storage unit of the AP server 40 by uploading to the AP server 40, and an AP server connection process to be described later by the CPU 16A Each AP server connection program for installing Le (details will be described later) is also stored. The storage unit 16C of the main control unit 16 is an example of a second storage unit according to claim 1 or the like.

  The above AP server connection program is an aspect of the information input support program according to the present invention. In this embodiment, the above AP server connection program is executed by the CPU 16A of the main body control unit 16 of the image reading and printing apparatus 14. Thus, the image reading and printing apparatus 14 functions as an example of the information input support apparatus according to the present invention.

  In addition, each AP server 40 cooperates with the image reading and printing apparatus 14 to use a service that uses the AP server 40 (for example, as described above, a service for printing a DB registration document, a service for a scan-to-server, etc. ) To the user, and an application program for realizing the service is installed in the storage unit of the AP server 40. Each terminal device 26 is connected with a display 28, a keyboard 30 and a mouse 32. In addition, in the nonvolatile storage unit (not shown) of the management server 36, for each user of the computer system 10, a user ID, an employee number, an e-mail address, and an IC card possessed by each user are stored. A user attribute information table in which a plurality of types of attribute information such as recorded card IDs are registered is stored. The storage unit of the management server 36 is an example of a first storage unit described in claim 1 and the like.

  Next, the operation of this embodiment will be described. The main body control unit 16 of the image reading and printing apparatus 14 performs a service providing process for providing various services to the user by executing a service providing program by the CPU 16A. In this service providing process, the image reading and printing apparatus The AP server 40 is used as a service to be used by a user who has gone through a user authentication process in which the card reader 24 reads information such as a card ID recorded on an IC card held by the user. When a service to be selected is selected, a process for calling an AP server 40 connection program is performed in order to connect to the AP server 40 that provides the selected service. As a result, the AP server 40 connection program is executed by the CPU 16A, whereby the main body control unit 16 of the image reading and printing apparatus 14 performs the AP server 40 connection process. The AP server 40 connection process will be described below with reference to FIG.

  In the AP server 40 connection process, first, in step 100, based on the service selected by the user, the connection destination of the AP server 40 for receiving the provision of the service is recognized, and the connection to the recognized connection destination is established. Send the requested information. In the storage unit 16C of the main body control unit 16, connection destination information (for example, connection destination URL (Uniform Resource Locator)) including information on the connection target AP server 40 is provided for each service using the AP server 40. The registered connection destination table is stored in advance, and the processing in step 100 is performed by, for example, searching the connection destination table using the service selected by the user as a key, reading out the corresponding connection destination information, and reading the connection This is done by sending a web page distribution request to the connection destination indicated by the destination information.

  In the next step 102, the information is acquired by receiving the information of the web page transmitted from the connection destination AP server 40. In the next step 104, based on whether or not the screen represented by the information received from the AP server 40 is an authentication information input screen, it is determined whether or not authentication information input is requested from the AP server 40. When a service that does not require user confirmation (for example, a service provided to an unspecified user) is requested, the AP server 40 provides a screen other than the authentication information input screen (for example, a service to be provided). Information on a screen capable of selecting the details of the image) is distributed to the image reading and printing apparatus 14. In this case, the other screen is displayed on the display unit 22A of the operation panel 22, the determination in step 104 is denied, the AP server connection process is terminated, and the control returns to the service providing process.

  On the other hand, in providing a service for printing a DB registration document, a service of a scan to server, etc., for example, for the purpose of ensuring the security of the DB registration document and storing uploaded data in a different storage area for each user. It is necessary to confirm the user who requested the provision of the service. In this way, when provision of a service requiring user confirmation is requested, the AP server 40, as shown in FIG. 4A as an example, inputs a user ID input field 50 and a password input field 52. Is distributed to the image reading and printing apparatus 14. This authentication information input screen is described in HTML (HyperText Markup Language), the user ID input field 50 has a tag indicating that it is a user ID input field, and the password input field 52 has a password input field. And the image reading and printing apparatus 14 that has received the information on the authentication information input screen interprets the tag added to each of the input fields 50 and 52, thereby entering the input field 50. It can be recognized that the type of information to be input is “user ID” and the type of information to be input in the input field 52 is “password”. When the authentication information input screen information is distributed from the AP server 40, the distributed authentication information input screen is displayed on the display unit 22A of the operation panel 22, and the determination in step 104 is affirmed and the process proceeds to step 106. .

  There is also an AP server 40 having a specification that does not distribute the information on the authentication information input screen to the connection source device and distributes only error information indicating that the connection is not permitted because there is no authentication information. In the case where the connection destination AP server 40 is the AP server 40 having such a specification, as shown in FIG. An authentication information input screen provided with a user ID input field 50 and a password input field 52 is generated and displayed on the display unit 22A of the operation panel 22. In this case also, the determination at step 104 is affirmed and the routine proceeds to step 106.

  In the next step 106, user identification information (such as a card ID read from an IC card possessed by the user) is transmitted to the management server 36, so that the user identified by the transmitted user identification information is transmitted. Request attribute information. Thereby, the management server 36 searches the user attribute information table using the user identification information received from the image reading and printing apparatus 14 as a key, and all attributes corresponding to the same user as the received user identification information. Information (user ID, employee number, e-mail address, etc.) is read from the user attribute information table and transmitted, and in step 106, the attribute information is received and stored in the memory 16B. .

  By the way, with the spread of ASP (Application Service Provider) and SaaS (Software as a Service), even if the computer system 10 according to the present embodiment is installed in a certain company, the image reading and printing apparatus 14 is The form of providing services to users in cooperation with the AP server 40 provided by an external service provider is increasing. However, in this case, the user ID for using the AP server 40 is given according to the provision rules on the service provider side, and the password also satisfies the standards (for example, the number of digits and the types of usable characters) determined by the service provider side. Therefore, a user who receives a service provided by the image reading and printing apparatus 14 cooperating with the AP server 40 provided by an external service provider can use an AP provided by a different service provider. It is necessary to input different authentication information (user ID and password) for each service using the server 40. Even if the computer system 10 including the AP server 40 is a system installed in the same company, authentication information for all services provided by the image reading and printing apparatus 14 cooperating with the AP server 40. There can be a situation where it is not possible to unify.

  For this reason, in this embodiment, the rule information table is stored in the storage unit 16C of the main body control unit 16. This rule information table is composed of a connection destination rule table shown in FIG. 5A and a rule definition table shown in FIG. 5B. The connection destination rule tables are mutually connected using the AP server 40. For different types of services, connection destination information (connection destination URL) for receiving the provision of the service, and the type of information to be input when receiving the provision of the service (in the example shown in FIG. 5A) Rule information representing input information rules is registered and configured in association with “user ID” and “password” (rule information associated with “user ID” is provided by the service) The rule of the user ID to be input when receiving the service, and the rule information associated with “password” indicates the rule of the password to be input when receiving the service provision). In addition, the rule definition table includes names, contents, and rule types for all rules applied to at least one type of input information of various types of input information (for example, “user ID” and “password”). The information whose contents are registered in the rule definition table among the user ID and password rule information registered in the connection destination rule table is applied. For the user ID and password, only the rule name (such as “Rule 1” or “Rule 2”) is registered as rule information.

  In step 108, the connection destination rule table is created using the connection destination information used in the information transmission in the previous step 100 and the type of input information recognized based on the tag added to the input field of the authentication information input screen as keys. In step 110, the rule information corresponding to the connection destination and the type of input information for receiving the provision of the service selected by the user is registered in the connection destination rule table based on the search result in step 108. It is determined whether it has been done. When this determination is affirmed, the routine proceeds to step 112, where the corresponding rule information is read from the connection destination rule table and stored in the memory 16B. In the following description, the case where the types of input information for receiving the provision of the service selected by the user are “user ID” and “password” will be described as an example.

  In the next step 114, the rule information represented by the rule information corresponding to the input information type “user ID” in the rule information read in step 112 is determined, and the process branches according to the determination result. In the present embodiment, as a rule corresponding to “user ID”, a first type rule (rules 2 and 3 shown in FIG. 5B) that specifies the type of attribute information used as a user ID, a user A type of attribute information used as an ID is specified, a second type rule (rule 4 shown in FIG. 5B) that specifies an editing method of the specified attribute information, and a fixed value is specified as a user ID. One of the third type rules (see “fixed value (“ anonymous ”)” shown in FIG. 5A) is used, and the rule corresponding to the user ID in the connection destination rule table includes: One of the first to third types of rules is set for each connection destination in accordance with the user ID assignment rule at each connection destination.

  Here, when the rule information of the user ID read in step 112 represents the rule content corresponding to the first type rule, the process proceeds from step 114 to step 116 and acquired in the previous step 106. From the user attribute information, the type of attribute information designated by the rule information of the user ID read in step 112 is extracted as the user ID, and the process proceeds to step 122.

  If the rule information of the user ID read in step 112 represents the rule content corresponding to the second type rule, the process proceeds from step 114 to step 118, and the use acquired in the previous step 106 Attribute information of the type specified by the rule information of the user ID read in step 112 is extracted from the attribute information of the user. In the next step 120, the user ID is generated by editing the attribute information extracted in step 118 in accordance with the editing method specified by the rule information of the user ID read in step 112, and the process proceeds to step 122. .

  Further, when the rule information of the user ID read in step 112 represents the rule content corresponding to the third type rule, the process proceeds from step 114 to step 121, and the fixed value defined in the rule information. Is set as the user ID, and the process proceeds to step 122. Steps 106 to 121 described above are an example of processing by the generating means of the present invention (more specifically, the generating means described in claims 2, 4 and 5) together with step 128 described later.

  In step 122, the user ID obtained by the process of step 116, step 120 or step 121 is set in the user ID input field 50 of the authentication information input screen displayed on the display unit 22A of the operation panel 22. To do. As a result, as shown in FIG. 4B as an example, in the user ID input field 50 on the authentication information input screen, the connection destination rule is entered without the user performing an operation of inputting the user ID. Appropriate user IDs are set and displayed in accordance with user ID rules (rule information) registered in the table. Step 122 is an example of processing by the processing means of the present invention.

  In step 124, the contents of the rule represented by the rule information corresponding to the type “password” of the input information among the rule information read in step 112 are determined, and the process branches according to the determination result. In the present embodiment, as a rule corresponding to “password”, a fourth type rule (rule 1 shown in FIG. 5B) that requires the user to input a password, and a first value that designates a fixed value as the password. One of the five types of rules (see “Fixed Value (“ ”)” ”shown in FIG. 5A) is used, and the connection destination rule table has a password rule for each connection destination. A fourth type rule or a fifth type rule is set for each connection destination in accordance with a password provision rule (whether it is a fixed value).

  If the password rule information read in step 112 represents the rule content corresponding to the fourth type rule, the process proceeds from step 124 to step 126, and whether or not the password is input by the user. Step 126 is repeated until the determination is affirmative. When the user operates the operation unit 22B of the operation panel 22 to input a password in the password input field 52 of the authentication information input screen, the determination in step 126 is affirmed and the process proceeds to step 132. . As an example, in FIG. 4C, after the user ID is set and displayed in the user ID input field 50 of the authentication information input screen, the password is input by the user in the password input field 52. It shows the state that was done.

  If the password rule information read in step 112 represents the rule content corresponding to the fifth type rule, the process proceeds from step 124 to step 128, and the fixed value specified in the rule information is changed to the password. And the process proceeds to step 132.

  In the next step 132, it is determined whether transmission of a user ID and password is instructed, and step 132 is repeated until the determination is affirmed. As shown in FIGS. 4A to 4C, the authentication information input screen is provided with a button 54 for instructing transmission of a user ID and a password, and in the input field 50 of the authentication information input screen. When the user who has confirmed the displayed user ID and the password displayed in the input field 52 performs an operation of selecting the button 54, the determination in step 132 is affirmed and the process proceeds to step 134, and the previous step 100 is performed. The user ID displayed in the input field 50 of the authentication information input screen and the password displayed in the input field 52 are transmitted to the connection destination that has transmitted the information requesting the connection in step.

  As a result, in the connection destination AP server 40, the user requesting the provision of the service via the image reading and printing apparatus 14 is authorized based on the combination of the user ID and password received from the image reading and printing apparatus 14. A user authentication process for confirming whether or not the user is a valid user is performed. When the user authentication process confirms that the user is a legitimate user, the AP server 40 displays information on a screen other than the authentication information input screen (for example, a screen on which details of services to be provided can be selected). The image is distributed to the image reading and printing apparatus 14. In the image reading and printing apparatus 14 that has received this information, the screen (web page) represented by the information received from the AP server 40 in step 136 is displayed on the display unit 22A of the operation panel 22, and the AP server connection process is terminated. As a result, control returns to the service providing process.

  Next, a process when the rule information of the user ID and the password corresponding to the connection destination for receiving the provision of the service selected by the user is not registered in the connection destination rule table will be described. In addition, as a case where this situation occurs, there is a case where connection is made to a connection destination that has not been connected in the past. If the rule information of the user ID and password corresponding to the connection destination is not registered in the connection destination rule table, the determination in step 110 is denied and the process proceeds to step 130, and rule information addition processing is performed.

  This rule information addition process will be described with reference to FIG. 3. In step 150, as shown in FIG. 4D as an example, a user ID input field 56 and a plurality of user IDs for inputting a user ID are displayed. The virtual keyboard 60 provided with the key 58 is displayed on the display unit 22 </ b> A of the operation panel 22. In step 150, all rules (rule information) of the user ID registered in the rule information table are extracted, and rule buttons 62 corresponding to the extracted individual rules are additionally displayed on the virtual keyboard 60. Further, a button 64 for instructing generation of rule information for setting the user ID input in the input field 56 as a fixed value is additionally displayed on the virtual keyboard 60.

  When any operation is performed by the user on the virtual keyboard 60 displayed on the display unit 22A of the operation panel 22, the process proceeds to step 152, and it is determined whether or not the operation by the user is an operation for selecting the rule button 62. When the virtual keyboard 60 is displayed on the display unit 22 </ b> A of the operation panel 22, the user recognizes the user ID assignment rule at the current connection destination, and the recognized assignment rule is displayed on the virtual keyboard 60. It is determined whether or not the rule of the user ID represented by the rule button 62 is met. Then, when there is a rule button 62 representing a user ID rule that matches the recognized provision rule, an operation for selecting the rule button 62 is performed. If the above operation is performed by the user, the determination at step 152 is affirmed and the routine proceeds to step 154.

  In step 154, the content of the rule of the user ID represented by the rule button 62 selected by the user is determined, and the process branches according to the determination result. Here, when the content of the rule of the user ID represented by the rule button 62 selected by the user is the rule content corresponding to the rule of the first type, the process proceeds from step 154 to step 156, The attribute information of the type specified by the rule of the user ID represented by the rule button 62 selected by the user is extracted as the user ID from the user attribute information acquired in the previous step 106, and step 162 is executed. Migrate to

  If the rule content of the user ID represented by the rule button 62 selected by the user is the rule content corresponding to the rule of the second type, the process proceeds from step 154 to step 158, The attribute information of the type specified by the rule of the user ID represented by the rule button 62 selected by the user is extracted from the attribute information of the user acquired in step 106. In the next step 160, the user ID is generated by editing the attribute information extracted in step 158 according to the editing method specified by the rule of the user ID represented by the rule button 62 selected by the user, Control goes to step 162.

  In step 162, the rule information of the user ID indicated by the rule button 62 selected by the user is additionally registered in the connection destination rule table in association with the connection destination information of the current connection destination. Steps 150 to 164 described above are an example of processing performed by the generation unit according to the sixth aspect.

  In step 164, the authentication information input screen is displayed again on the display unit 22 </ b> A of the operation panel 22, and the user ID generated in step 156 or 160 is input as the user ID of the authentication information input screen displayed again. Set in the column 50. As a result, as shown in FIG. 4 (E) as an example, the user ID input field 50 on the authentication information input screen is selected by the user without performing an operation for inputting the user ID. An appropriate user ID is set and displayed according to the rule of the user ID represented by the rule button 62 that has been set.

  In step 166, a button 66 for instructing generation of rule information for setting the password input in the password input field 52 as a fixed value on the authentication information input screen redisplayed on the display unit 22A of the operation panel 22 (FIG. 4 (E) is also displayed. In the next step 168, it is determined whether or not a password has been input by the user, and step 168 is repeated until the determination is affirmed. The user recognizes the password assignment rule (whether it is a fixed value) at the connection destination at this time, and if the recognized assignment rule is a fixed value, after selecting the button 66 on the authentication information input screen, the password input field If the recognized grant rule is not a fixed value, an operation for inputting the password in the password input field 52 is performed without selecting the button 66 on the authentication information input screen.

  If any of the above operations is performed and a password is input in the password input field 52, the determination in step 168 is affirmed and the process proceeds to step 170, and the user selects the button 66. It is determined whether or not If this determination is negative, the process proceeds to step 171, where the password rule information representing the fourth type of rule for prompting the user to input the password is associated with the connection destination information of the current connection destination, and the connection destination Additional registration is made in another rule table, and the rule information addition process is terminated. On the other hand, if the determination in step 170 is affirmed, the process proceeds to step 172, where the password of the fifth type rule that designates the password input in the password input field 52 by the user as a fixed value of the password. The rule information is additionally registered in the connection destination rule table in association with the connection destination information of the current connection destination, and the rule information addition processing is terminated.

  As an example, FIG. 5C shows a new state in which the information shown in FIG. 5A is registered in the rule table for each connection destination and the rule information for the corresponding user ID and password is not registered. By connecting to the connection destination URL = “http://www.acme.com/” as the connection destination, the virtual keyboard 60 shown in FIG. 4D is displayed on the display unit 22A of the operation panel 22. As for the user ID, the rule button 62 corresponding to the rule for designating the mail address of the user attribute information as the user ID is selected by the user, and the password is selected without selecting the button 66. When an operation for inputting a password in the input field 52 is performed by the user, connection destination information (connection destination URL) and rule information of the user ID / password are additionally registered in the rule table for each connection destination. It shows the state that was done.

  When the connection-destination rule table is updated to the state shown in FIG. 5C, for example, another user sets the connection destination URL = “http://www.acme.com/” as the service to be used. When a service that needs to be connected is selected, as shown in FIG. 4F, according to the rule information of the user ID additionally registered in the connection destination rule table in association with the connection destination information (connection destination URL). In addition, another user's mail address is displayed in the user ID input field 50.

  Further, in the state where the virtual keyboard 60 is displayed on the display unit 22A of the operation panel 22 in the previous step 150, a rule button 62 representing a rule of user ID that matches the user ID assignment rule at the current connection destination is displayed. If the user ID does not exist, the user operates the key 58 of the virtual keyboard 60 after selecting the button 64 in the virtual keyboard 60 if the rule for assigning the user ID at the current connection destination is a fixed value. The user ID is entered in the input field 56, and if the user ID assignment rule is not a fixed value, the key 58 of the virtual keyboard 60 is operated without selecting the button 64 in the virtual keyboard 60. Then, an operation for inputting the user ID in the input field 56 is performed.

  If any of the above operations is performed and a user ID is input in the input field 56, the determination in step 152 is denied and the process proceeds to step 174, and the user selects the button 64. It is determined whether or not generation of rule information for setting the user ID input in the input field 56 as a fixed value is instructed based on whether or not it has been received. If this determination is affirmative, the process moves to step 176, and rule information representing a third type rule that specifies the user ID input by the user in the input field 56 as a fixed value of the user ID is generated. Then, the process proceeds to step 162. In this case, in step 162, the rule information generated in step 176 is additionally registered in the connection destination rule table in association with the connection destination information of the current connection destination as rule information of the user ID. , The authentication information input screen is displayed again on the display unit 22A of the operation panel 22, and the user ID input in the input field 56 of the virtual keyboard 60 is displayed in the user ID input field 50 of the authentication information input screen. Is set to

  Further, in the state where the virtual keyboard 60 is displayed on the display unit 22A of the operation panel 22 in the previous step 150, a rule button 62 representing a rule of user ID that matches the user ID assignment rule at the current connection destination is displayed. If it does not exist and the rule for assigning the user ID at the connection destination at this time is not a fixed value, the user does not select the button 64 in the virtual keyboard 60 and enters it in the input field 56 of the virtual keyboard 60. By performing the operation of inputting the user ID, the determination in step 174 is denied, and the process proceeds to step 178. The user attribute information acquired in the previous step 106 is input in the input field 56. Attribute information that completely matches the user ID or attribute information that partially matches the input user ID (however, attribute information that includes all characters of the user ID) Search or dolphin not.

  In the next step 180, it is determined whether or not the corresponding information (attribute information that completely or partially matches the user ID input in the input field 56) has been extracted by the search in step 178. If this determination is negative, it is difficult to determine the rule for the user ID from the user ID input in the input field 56, so the process proceeds to step 164 to generate rule information and rules for each connection destination. In step 164, the authentication information input screen is redisplayed on the display unit 22A of the operation panel 22 and the user ID input in the input field 56 of the virtual keyboard 60 is input without performing additional registration to the table. Processing for setting in the user ID input field 50 on the screen is performed.

  If the determination in step 180 is affirmed, the process proceeds to step 182 to determine whether or not attribute information that completely matches the user ID input in the input field 56 is extracted in the search in step 178. If the determination in step 182 is affirmed, it is determined that the rule of the user ID at the current connection destination is a rule that uses attribute information that completely matches the user ID input in the input field 56 as the user ID. Therefore, the process proceeds to step 184, and the type of attribute information that completely matches the user ID entered in the input field 56 is specified as the type of attribute information used as the user ID as rule information for the user ID. After the rule information of the contents is generated and the generated rule information is additionally registered in the rule definition table together with the name, the process proceeds to step 162.

  In this case, in step 162, the rule information generated in step 184 is additionally registered as rule information of the user ID in the connection destination rule table in association with the connection destination information of the current connection destination. , The authentication information input screen is displayed again on the display unit 22A of the operation panel 22, and the user ID input in the input field 56 of the virtual keyboard 60 is displayed in the user ID input field 50 of the authentication information input screen. Is set to Even when the above processing is performed, for example, when another user selects a service that requires connection to the connection destination URL = “http://www.acme.com/” as a service to be used, According to the rule information of the user ID additionally registered in the connection destination rule table in association with the connection destination information (connection destination URL), the attribute information of another user whose type is specified in the rule information is It is set and displayed in the user ID input field 50.

  In addition, attribute information that includes all characters of the user ID input in the input field 56 and partially matches the input user ID (an extra character string in the input user ID) by the search in step 178. (Attribute information to which is added) is extracted, the determination in step 182 is denied, and the process proceeds to step 186, where the extracted attribute information is completely matched with the user ID input in the input field 56. An editing method is derived. Specifically, the derivation of the editing method is performed by, for example, extracting and extracting extra characters for the user ID input in the input field 56 from among the individual characters constituting the extracted attribute information. A user ID in which the first edit method for deleting characters is generated and the character string after deleting the extra characters according to the first edit method generated from the extracted attribute information is input in the input field 56 Is not matched, the second editing method is performed in which the order of characters in the character string is changed so as to match the user ID input in the input field 56.

  In the next step 188, as the rule information of the user ID, the type of attribute information partially matching with the user ID input in the input field 56 is designated as the type of attribute information used as the user ID. Steps after generating the rule information with the contents defining the user ID by designating the editing method generated in step 1 as the editing method for the type of attribute information, and additionally registering the generated rule information together with its name in the rule definition table 162. As an example, in FIG. 5E, the user's “mail address” is specified as the type of attribute information used as the user ID, and an example of an editing method for “mail address” is preceded by “@”. The rule information indicating that “eight characters from the beginning of the character string” are extracted together with the name “rule 5” is additionally registered in the rule definition table.

  In this case, in step 162, the rule information generated in step 184 is additionally registered in the connection destination rule table in association with the connection destination information of the current connection destination as rule information of the user ID. For example, in FIG. 4D, the rule information of “Rule 5” shown in FIG. 5E is the connection destination information (connection destination URL = “http: // www”) as the rule information of the user ID. .acme.com / ") shows a state additionally registered in the connection destination rule table. In the next step 164, the authentication information input screen is displayed again on the display unit 22A of the operation panel 22, and the user ID input in the input field 56 of the virtual keyboard 60 is the user ID of the authentication information input screen. In the input field 50.

  Even when the above processing is performed, for example, when another user selects a service that requires connection to the connection destination URL = “http://www.acme.com/” as a service to be used, According to the rule information (“rule 5”) of the user ID additionally registered in the connection destination rule table in association with the connection destination information (connection destination URL), “@” in the email address of the other user. A character string of 8 characters from the top of the preceding character string is set and displayed in the user ID input field 50. Steps 178 to 188 and 162 described above are an example of processing by the rule management means described in claim 7 (more specifically, claim 8).

  Note that, as in steps 186 and 188 in FIG. 3, rule information is generated based on attribute information that includes all characters of the user ID input by the user and partially matches the input user ID. In this case, for example, there may be cases where multiple types of rule information can be generated due to the existence of a plurality of attribute information that matches the above conditions. In this case, this corresponds to the same connection destination information. In addition, multiple rule information is additionally registered in the connection destination rule table, and when a service that requires connection to the same connection destination is selected by another user as a service to be used, multiple types of A plurality of pieces of authentication information may be generated in accordance with the rule information and displayed as choices of authentication information to be input. In this case, when any authentication information is selected, it is desirable to delete the rule information corresponding to the authentication information not selected from the connection destination table or the rule definition table.

  In the above, the rule of the user ID is the first type rule that specifies the type of attribute information used as the user ID, the type of attribute information used as the user ID is specified, and the specified attribute information is edited Either a second type rule that specifies a method or a third type rule that specifies a fixed value as a user ID, and a fourth type that requires the user to enter a password as a password rule Although the aspect which uses any of the 5th type rule which designates a fixed value as a rule and a password was demonstrated, this invention is not limited to this, For example, it is 1st type from the rule of user ID. Any of the rules to the third type rules may be excluded, and the password rules are similar to the first type rules and the second type rules. It is also possible to use the rules.

  Also, in the above, when authentication information such as a user ID or password is generated, the generated authentication information is set and displayed in a corresponding input field in the authentication information input screen, and is sent to the AP server 40 by an instruction from the user. Although the transmission mode has been described, the present invention is not limited to this, and when the user ID and password are generated, the generated user ID and password may be transmitted to the AP server 40. Good. In this case, the setting / display of the user ID and password in the corresponding input field in the authentication information input screen may be omitted, or the display of the authentication information input screen itself may be omitted. In the above aspect, the process of transmitting the user ID and password to the AP server 40 is also an example of the process by the processing means of the present invention.

  Furthermore, in the above, in the rule table for each connection destination in the rule information table, for each connection destination, a rule associated with the connection destination information (connection destination URL) and the type of input information (user ID and password) Although an aspect of registering information has been described, the present invention is not limited to this, and a screen ID or the like is assigned to each authentication information input screen distributed by each connected AP server 40. , An input field ID is assigned to each authentication information input field (for example, a user ID or password input field) in each authentication information input screen, and the corresponding screen ID and In the case where the AP server 40 is configured to distribute information in which the input field ID is embedded, the combination of the screen ID and the input field ID is used as the type of input information, and the connection destination information (connection destination UR L) and the rule information may be registered in the rule information table in association with the combination of the screen ID and the input field ID. In this case, the screen ID and the input field ID are extracted from the information on the authentication information input screen distributed from the AP server 40, and rule information corresponding to the connection destination URL and the combination of the extracted screen ID and the input field ID is obtained. The authentication information (for example, user ID or password) can be generated according to the read rule information after reading from the rule information table. This aspect is an example of the invention described in claim 3.

  Further, in the above description, the mode in which the user who receives the service using the AP server 40 operates the operation panel 22 of the image reading and printing apparatus 14 has been described. However, the present invention is not limited to this. The user inputs an instruction for receiving service provision and authentication information via the terminal device 26, and the image reading and printing apparatus 14 that has received the instruction and authentication information via the network 12 connects to the AP server 40. In the aspect, the image reading and printing apparatus 14 generates authentication information based on the rule information corresponding to the connection destination and the type of input information, and generates the authentication information in the input field in the authentication information input screen where the information is distributed from the AP server. Processing for distributing the screen in which the authentication information is set to the terminal device 26, transmitting the generated authentication information to the AP server 40, and distributing the result to the terminal device 26 It may be performed.

  In the above description, the mode in which the image reading and printing apparatus 14 according to the present embodiment functions as the information input support apparatus according to the present invention has been described. However, the present invention is not limited to this, for example, by a plurality of users. When each electronic device such as a PC or a portable terminal functions as an information input support device according to the present invention and these electronic devices request authentication information from the connection destination, the type of connection destination and input information Generate authentication information based on the rule information corresponding to, set the generated authentication information in the authentication information input field of the authentication information input screen distributed from the connection destination, or send the generated authentication information to the connection destination Processing may be performed. In this case, as the identification means of the present invention, a configuration for identifying the user based on the user identification information inputted when each user starts using the electronic device can be adopted.

  Further, in the above, the storage unit of the management server 36 is stored in the storage unit of the management server 36 connected to the image reading and printing apparatus 14 via the network 12, whereby the storage unit of the management server 36 is described in claim 1 or the like. Although it was used as an example of the first storage unit, the present invention is not limited to this, and the storage unit of the image reading and printing apparatus 14 is configured to store the user attribute information table in the storage unit 16C of the image reading and printing apparatus 14. It is also possible to employ a configuration in which 16C is used as an example of the first storage unit.

  Furthermore, although the authentication information has been described above as an example of input information in the present invention, the present invention is not limited to this and can be applied to input of arbitrary information by a user. In particular, as described above, the mode of using each combination of the screen ID and the input field ID as the type of input information can be easily applied to an input screen other than the authentication information input screen and an information input field other than the authentication information input field. It can be extended and is suitable for inputting arbitrary information other than authentication information by the user.

  In the above description, the AP server connection program as an example of the information input support program according to the present invention has been described as being prestored (installed) in the storage unit 16C of the main body control unit 16 of the image reading and printing apparatus 14. The information input support program according to the present invention can be provided in a form recorded on a recording medium such as a CD-ROM or a DVD-ROM.

DESCRIPTION OF SYMBOLS 10 Computer system 14 Image reading and printing apparatus 16 Main body control part 16C Storage part 22 Operation panel 22B Operation part 22A Display part 24 Card reader 36 Management server 40 AP server

Claims (9)

An identification means for identifying the user;
Acquiring attribute information corresponding to the user identified by the identifying means from the first storage means for storing the user attribute information for each of a plurality of users, and generating input information from the user attribute information Obtaining rule information corresponding to the transmission destination of the input information and the type of the input information from the second storage means for storing the rule information representing the rule of the input information in association with the transmission destination of the input information and the type of the input information, respectively. Generating means for generating the input information corresponding to the identified user based on the acquired attribute information and the rule information;
Processing means for performing processing for transmitting the input information generated by the generating means to the transmission destination;
An information input support device including: The input information is authentication information that requires input to an authentication information input field in an input screen distributed from the connection destination when connected to the instructed connection destination,
When the input screen is distributed from the connection destination, the generation unit stores the rule information in association with the connection destination as the transmission destination of the input information and the type of the input information, respectively. Rule information corresponding to the type of information requested to be input to the connection destination and the authentication information input field of the distribution source of the input screen is acquired, and the input information based on the acquired attribute information and the rule information Generating the authentication information as
The information input support apparatus according to claim 1, wherein the processing unit performs a process of transmitting the authentication information generated by the generation unit to the connection destination. The input information is authentication information that requires input to an authentication information input field in an input screen distributed from the connection destination when connected to the instructed connection destination,
When the input screen is distributed from the connection destination, the generation means inputs the rule information, the connection destination as the transmission destination of the input information, and the input information as the type of the input information. Rule information corresponding to the connection destination of the distribution source of the input screen and the authentication information input column in the distributed input screen, from the second storage means for storing each of the input fields in association with information Acquiring the authentication information as the input information based on the acquired attribute information and the rule information,
The information input support apparatus according to claim 1, wherein the processing unit performs a process of inputting the authentication information generated by the generation unit into an authentication information input field in the distributed input screen.   When the rule information acquired from the second storage unit is information specifying the type of attribute information used as the input information as the rule, the generation unit uses the attribute information acquired from the first storage unit. The information input according to any one of claims 1 to 3, wherein the input information corresponding to the identified user is generated by extracting attribute information corresponding to a type specified by the rule information. Support device.   When the rule information acquired from the second storage unit is information specifying the type of attribute information used as the input information and the editing method of the attribute information as the rule, After the attribute information corresponding to the type specified by the rule information is extracted from the attribute information acquired from one storage means, the extracted attribute information is edited according to the editing method specified by the rule information, so that the identification is performed. The information input support device according to any one of claims 1 to 3, wherein the input information corresponding to a user is generated.   When the rule information corresponding to the transmission destination of the input information and the type of the input information is not stored in the second storage unit, the generation unit stores a plurality of rule information stored in the second storage unit. Presenting each of the plurality of rules as options to the user, generating the input information corresponding to the identified user based on a rule selected by the user from among the plurality of presented rules, and The information according to any one of claims 1 to 5, wherein rule information representing the selected rule is additionally stored in the second storage unit in association with a transmission destination of the input information and a type of the input information. Input support device.   When the input information is input by the user, the input information input by the user is collated with attribute information corresponding to the user identified by the identification unit, acquired from the first storage unit, A rule for generating the input information is generated from the attribute information of the user, and the rule information representing the generated rule is added to the second storage unit in association with the transmission destination of the input information and the type of the input information The information input support device according to any one of claims 1 to 6, further comprising rule management means for storing.   In the rule management means, attribute information that is obtained from the first storage means and corresponds to the user identified by the identification means is attribute information that completely matches the input information entered by the user. If it is, a rule that specifies the type of the attribute information that is completely matched is generated as the rule, and the attribute information corresponding to the user identified by the identification unit, obtained from the first storage unit, is obtained. If there is attribute information that partially matches the input information input by the user, the editing method for causing the partially matching attribute information to completely match the input information input by the user The information input according to claim 7, wherein a rule that specifies the type of attribute information that partially matches and the determined editing method is generated as the rule. Assistance devices. Computer
An identification means for identifying the user,
Acquiring attribute information corresponding to the user identified by the identifying means from the first storage means for storing the user attribute information for each of a plurality of users, and generating input information from the user attribute information Obtaining rule information corresponding to the transmission destination of the input information and the type of the input information from the second storage means for storing the rule information representing the rule of the input information in association with the transmission destination of the input information and the type of the input information, respectively. Generating means for generating the input information corresponding to the identified user based on the acquired attribute information and the rule information;
And the information input assistance program for functioning as a process means which performs the process which transmits the said input information produced | generated by the said production | generation means to the said transmission destination.

Images